[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP starts, but...



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

Je Mardo Marto 15 2005 21:16, vi skribis:
> At 03:53 PM 3/15/2005, Pupeno wrote:
> >-----BEGIN PGP SIGNED MESSAGE-----
> >Hash: SHA1
> >
> >Noone replied anywhere, should I consider this a bug ?
>
> You are free to consider it whatever you want to.
>
> But the project won't consider it a bug in OpenLDAP Software
> without sufficient evidence that it actually is a bug in
> OpenLDAP Software.  Until you have some evidence, there
> is no point in reporting a bug as such reports will be closed.

I think I have plenty of information that the certificates are right and that 
for some reason, OpenLDAP/OpenSSL is failing to pick it up (note, 
Apache/OpenSSL has no trouble): 
http://www.mail-archive.com/openssl-users%40openssl.org/msg39181.html


> I suggest you test your certificates using purely
> OpenSSL command line tools (e.g., s_client and s_server
> talking to each other).
I've done it, using the same certificate and key:
- - Any web browser to Apache, works.
- - s_client to s_server, works.
- - s_client to OpenLDAP, *doesn't* work.
- - any ldap browser to OpenLDAP, *doesn't* work.

> If they don't work there, they won't 
> work in OpenLDAP Software.   And if they don't work there,
> you'd have something that the OpenSSL folks might actually
> be able to help you with.  Until you have that working, there
> is little point in discussions here.
It is already working and I asked to OpensSSL's mailing list anyway, nobody 
replied: 
http://www.mail-archive.com/openssl-users%40openssl.org/msg39181.html
Maybe I should consider it as a bug for OpenSSL, I don't know.

Thank you.
- -- 
Pupeno: pupeno@pupeno.com - http://pupeno.com
Reading Science Fiction ? http://sfreaders.com.ar
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFCN32NfW48a9PWGkURAj7MAJ4ysJPn1v9Z494b9Xcm9MRjO1wUSgCfWAg/
cMW35eJnQityajKoQu+UOes=
=YpzY
-----END PGP SIGNATURE-----